Pages

Nov 9, 2005

mom 2005 agent - port requirements

here's some good, general information on mom agent port requirements over a firewall. someone posted this on the msmom mailing list.

MOM agents can communicate with the MOM Management Server if the MOM agent computer is behind a firewall. However, you must open TCP port 1270 and UDP port 1270. Additionally, you must manually install and update MOM agents that are behind a firewall.
If you cannot enable access to port 1270 through the firewall, you must install a MOM management group inside the perimeter network. You can separately monitor the perimeter network management group. Or, you can enable alert forwarding from the perimeter network management group to the internal MOM management group by using port 1271.
If the managed computers belong to the internal domain, the following conditions are true:

Mutual authentication is available.

Signed and encrypted communications are available.

The following ports are open so that the managed computer can authenticate the MOM management domain and communicate with the domain:

UDP port 53 to support Domain Name System (DNS) queries and dynamic registrations